What's New in SecureCloud

New features, enhancements, and deprecated features over the last 12 months.

May 14, 2023

Title	Documentation Links	Description
Import Rules for Cloud Security Policy	Cloud Graph	From the Cloud Graph, you can now select rules to import to an existing or new cloud security policy.
Azure Virtual WAN Support	Asset Details	SecureCloud now supports Azure Virtual WAN in the Accessible Virtual Networks list under Network Configuration for Assets.

April 2, 2023

Title	Documentation Links	Description
Tag Manager Enhancements	Working with Tag Manager	When adding a tag, you can now select All to include all asset types.

March 19, 2023

Title	Documentation Links	Description
Tag Manager Enhancements	Working with Tag Manager	You can now select the tag manager property, that matches the asset type, from a drop-down list.
Azure and AWS Cluster Support	Asset List	SecureCloud now supports the Azure Managed Kubernetes service (AKS) and the AWS Managed Kubernetes service (EKS) as asset types.

February 27, 2023

Title	Documentation Links	Description
Support for Okta SSO	Identity Providers	Okta can now be used as your SSO identity provider to access SecureCloud.

February 05, 2023

Title	Documentation Links	Description
Create Policy Rule from Connection	Cloud Graph	Connection Details panel in Cloud Graph now has a button for creating a rule and adding it to an existing cloud policy.
Show Covering Rules	Cloud Graph	Connection Details panel in Cloud Graph now has a button that shows covering policies and rules in a separate panel.

January 29, 2023

Title	Documentation Links	Description
Associated Resources Count	Security Controls	The Security Controls page now displays the number of resources associated with the security control.

January 15, 2023

Title	Documentation Links	Description
Cloud Policy Coverage Indicator	Cloud Graph	Cloud Graph now shows if the connection between two entities is covered by a policy.
ASGs for Tag Management	Cloud Vendor Asset Properties	SecureCloud now supports tags based on the Application Security Groups (ASGs) property.

January 09, 2023

Title	Documentation Links	Description
Google Cloud Cluster Support	Asset List	SecureCloud now supports the Google Cloud Cluster as an asset type.

December 15, 2022

Title	Documentation Links	Description
License Expiration	SecureCloud Account	License information now appears in the Configuration > SecureCloud Account page.
Sensitive Data Compliance	Sensitive Data Compliance	SecureCloud now reveals when assets contain sensitive data that is exposed to the Internet.

November 27, 2022

Title	Documentation Links	Description
Has traffic Filter Extended	Navigating SecureCloud	Has traffic filter now supports Azure traffic.
Context-Sensitive Help	Navigating SecureCloud	New context-sensitive help links every SecureCloud page to the appropriate Knowledge Center page.
Cloud Security Policy Severity	Cloud Security Policy	You can now assign a default severity for rules in the policy and a severity for each rule.
Vulnerabilities API	SecureCloud APIs	Using API, you can add CVE Vulnerabilities to SecureCloud.
AWS Inspector Integration	Review Vulnerabilities	SecureCloud now uses AWS Inspector to access vulnerabilities.

October 24, 2022

Title	Documentation Links	Description
New Has traffic Filter	Navigating SecureCloud	New filter, Has traffic, shows assets for which traffic was detected. Currently supported for AWS.

September 11, 2022

Title	Documentation Links	Description
Vulnerable Assets Exposed to the Internet	Vulnerable Assets	New Dashboard widget and drilldown for assets with vulnerabilities that are exposed to the internet. The relevant vulnerabilities (CVEs) appear in the asset details.

August 28, 2022

Title	Documentation Links	Description
Applications Deprecated	Asset Grouping	The concept of an application entity defined by tags has been removed. It has been superseded with asset grouping, which allows you to define one of more hierarchic levels based on tags.
Security Control Tag Inheritance	Tag Manager	Your assets can now inherit tags from their associated roles and security groups.
Policy Rule Access Enhancements	Policy Rules	You can now specify services that don't appear in the predefined list: IP:<INT>, TCP:<FROM>-<TO>, UDP:<FROM>-<TO>. You can specify tags that do not yet exist. You can select subnets/Vnets that do not contain any assets.

August 11, 2022

Title	Documentation Links	Description
Cleanup rule support	Asset Rules	If a vendor rule exists that specifies Source=Any, Destination=Any, Service=Any, Action=Deny, then all rules below it are ignored when checking compliance with the cloud security policy.
IP Effective Access	Asset Rules	Access sources (e.g. virtual networks, subnets, VMs) now shown also for rules with effective (partial) access and an IP as source.
Internet Source in Rules	Policy Rules	In cloud security policy rules and access definitions, 'From' can now be defined as internet.
Default Policy	Cloud Security Policy	New SecureCloud accounts will be created with a default cloud security policy that allows access to your cloud by https only. This default policy has also been added to existing accounts with no policies.
Rule Violation Handling	Asset Rules	You can now view a selected rule highlighted in the policy in a new browser tab. You can also click on the policy name to view the policy in a new browser tab.
Improved Audit Detail	Audit	More information and improved formatting in details window.

July 31, 2022

Title	Documentation Links	Description
Cloud Security Policy	Cloud Security Policy	New cloud security policy with support for multiple policies and generic rules.
Cloud Security Policy Violations	Cloud Policy Violations by Asset	Redesigned report for the new cloud security policy, including filtering.
Azure VirtualNetwork Tags	Asset Rules	Effective access connectivity now supports Azure rules with VirtualNetwork service tags
Graph Enhancements	Cloud Graph	Improved policy violation information, quick links and filtering capabilities.
Violations List for a Selected Rule	Asset Rules	A list of all violations can be displayed for an inbound asset rule.